to-be-cont

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The GitLab CI templates declare service container images that are pulled and run at job runtime (e.g., registry.gitlab.com/to-be-continuous/tools/vault-secrets-provider:latest), which are remote artifacts fetched and executed by the pipeline and therefore constitute runtime external code dependencies required by the templates.